openbsd/src/lib/libcrypto/ecdsa, branch libressl-v2.7.2

openbsd/src/lib/libcrypto/ecdsa, branch libressl-v2.7.2 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v2.7.2 2018-03-17T15:24:44+00:00 Provide ECDSA_SIG_{g,s}et0(). 2018-03-17T15:24:44+00:00 tb 2018-03-17T15:24:44+00:00 urn:sha1:c7258cf3d366e4675ae1398659213748993af23e ok jsing use freezero() instead of memset/explicit_bzero + free. Substantially 2017-05-02T03:59:45+00:00 deraadt 2017-05-02T03:59:45+00:00 urn:sha1:5904cc0e04409fde39a97e6580535da34eeb4291 reduces conditional logic (-218, +82). MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH cache alignment calculation bn/bn_exp.c wasn'tt quite right. Two other tricky bits with ASN1_STRING_FLAG_NDEF and BN_FLG_STATIC_DATA where the condition cannot be collapsed completely. Passes regress. ok beck Send the function codes from the error functions to the bit bucket, 2017-01-29T17:49:23+00:00 beck 2017-01-29T17:49:23+00:00 urn:sha1:d1f47bd292f36094480caa49ada36b99a69c59b0 as was done earlier in libssl. Thanks inoguchi@ for noticing libssl had more reacharounds into this. ok jsing@ inoguchi@ Add ct and nonct versions of BN_mod_inverse for internal use 2017-01-21T11:00:47+00:00 beck 2017-01-21T11:00:47+00:00 urn:sha1:48df727a3547375dae8622c34fb55bdf5ef2c44c ok jsing@ Avoid a side-channel cache-timing attack that can leak the ECDSA private 2017-01-05T13:25:52+00:00 jsing 2017-01-05T13:25:52+00:00 urn:sha1:0db76d5ede53251eb5b0b76b42c77155e92beab7 keys when signing. This is due to BN_mod_inverse() being used without the constant time flag being set. This issue was reported by Cesar Pereida Garcia and Billy Brumley (Tampere University of Technology). The fix was developed by Cesar Pereida Garcia. Explicitly export a list of symbols from libcrypto. 2016-12-21T15:49:29+00:00 jsing 2016-12-21T15:49:29+00:00 urn:sha1:18adabd97858ed28289c9dc31e8042c515840be4 Move the "internal" BN functions from bn.h to bn_lcl.h and stop exporting the bn_* symbols. These are documented as only being intended for internal use, so why they were placed in a public header is beyond me... This hides 363 previously exported symbols, most of which exist in headers that are not installed and were never intended to be public. This also removes a few crusty old things that should have died long ago (like _ossl_old_des_read_pw). But don't worry... there are still 3451 symbols exported from the library. With input and testing from inoguchi@. ok beck@ inoguchi@ Remove pointless externs - the structs are declared in the same files a 2015-10-16T15:15:39+00:00 jsing 2015-10-16T15:15:39+00:00 urn:sha1:9132f9498abbc2c0c38a92317588c5636bd12e80 few lines above. Expand DECLARE_ASN1_ALLOC_FUNCTIONS and DECLARE_ASN1_FUNCTIONS_const 2015-10-16T15:12:30+00:00 jsing 2015-10-16T15:12:30+00:00 urn:sha1:d18b21becd3281309b1362e5ba5a508bc3d68812 macros. The only change in the generated assembly is due to line numbering. Remove pointless uses of DECLARE_ASN1_ENCODE_FUNCTIONS_const. 2015-10-16T15:09:28+00:00 jsing 2015-10-16T15:09:28+00:00 urn:sha1:9a104483e2bc4672e5075a2df8560c8a04e2e09a DECLARE_ASN1_FUNCTIONS_const already includes this macro so using both means we end up with duplicate function prototypes and externs. Correct spelling of OPENSSL_cleanse. 2015-09-10T15:56:26+00:00 jsing 2015-09-10T15:56:26+00:00 urn:sha1:647569a51c1530d10e75e272f0982682f696caa7 ok miod@